Nellie2

One of the security forums that I cut my malware baby teeth in is CastleCops… although back then it was known as ComputerCops.

Security forums are a valuable resource to our internet..and CastleCops have worked very hard over the last six years to build an effective and invaluable database of information and to provide a meeting place for experts from all different fields to enable us to work together and share information.

I’m proud to be a member of CastleCops… so happy Sixth Birthday guys…  lets hope you have lots more.

F-Secure have discovered the first rogue application that specifically targets the MAC, it’s called MacSweeper.

It will tell you your MAC is infected and that the only way you can get it clean is to buy the product, same old same old. Except this time it’s the MAC that is targeted. No operating system or computer build is totally secure… it’s the educated and aware person in control of the keyboard that dictates whether your system is safe or not.

Update from F-Secure see here

I shouldn’t laugh.. but if you are security concious (and I hope you are) and your friends and colleagues are for ever telling you what a load of rubbish you are going on about… then point them in the direction of this BBC news story.

Clarkson Stung After Bank Prank

Yes folks it really is that easy.. and whilst I’m sure you wouldn’t be daft enough to publish your bank details in a daily tabloid, I’ll bet you keep them on your computer.  Don’t…… there are some things that the good old pen, paper and lockable drawer just can’t beat.

Have you ever had an email bounce back at you (allegedly) saying it couldn’t be delivered? And then when you check it out you realise that you didn’t send the email in the first place… but it looks like you did?

I must admit this has happened to me a few times… and I have then gone into a bit of a frenzy thinking that I’ve got some sort of rootkit or trojan that is using my machine to spam out crap. I’ve spent hours checking and scanning my system with various tools and monitoring my traffic to look for unexpected activity. But of course my system is clean so what’s going on?

Brian Krebbs of Security Fix has written something that explains it rather well I think.

Spammers blast their junk mails out to millions of e-mail addresses that are usually purchased in bulk and/or scraped from various Web sites and forums. But some spammers also use those lists to fake or “spoof” the address in the “From:” field of each e-mail sent. That means that if they spoof your e-mail address in a message sent to an address that is no longer active, your inbox will receive the automated bounce-back reply explaining that the message could not be delivered.

Full article here…. read it!! The Mysterious Unsent ‘Bounced’ E-mail

Just in case you were wondering why there is a big need for all of us to be security concious.. to protect our computers, home networks and data… the BBC published an article today that helps to explain just what is going on out there and why.

Boom Times for Hi-Tech Criminals

Starting a career as a cyber criminal got much easier in 2007.

So say security experts looking back on 12 months in which hi-tech gangs took control of the net’s underground.

The economy supporting these groups has matured so much that now everything from virus-writing kits to spam-spewing zombies are available for rent or hire.

This has helped to fuel, say security professionals, rapid growth in the methods criminals use to catch out PC users and steal saleable data.

As the article explains… it’s all about money. The Hi-Tech criminal can make easy money in a very short space of time.  The article can make scary reading… but remember, ultimately it is YOUR responsibility to secure your computer and data, not Microsoft’s, not your ISP’s and not your friend who lives down the road and knows about computers.

Think about it… you wouldn’t leave your door open so that criminals can wander in and use your phone and car to commit crimes… so why leave your computer wide open?  If you don’t know how to secure it then educate yourself.. it’s not difficult if you know where to look… there are plenty of links on this blog to get you started.

Be careful out there………… but have fun!!! 

This is the time of year when we decide to make ourselves a few promises. In this technological age, our computers and the data we keep on them are becoming more and more important to us in our daily lives. So it makes sense to review how you use your computer and how you look after it and now is as good a time as any!

Update, Update, Update

The makers of the software you use work very hard to keep it up to date so that you are as protected as you can be from the latest security threats, it is up to you to make sure that you keep your software updated.

• Windows Update - you can set your computer to automatically download and install updates when they become available. If you don’t like that idea then you can change your settings in the security centre to notify you when updates are available.
• AntiVirus -Your AntiVirus should be set to automatically update, check your settings. If you use a paid for application then check your subscription renewal date too.
• Other Stuff - I’m sure it is a pain going through all your software to check whether updates are needed, Secunia Software Inspector will do that job for you, bookmark that site and run a scan about once a month.

Check Your Security Software

Now would be a good time to review your software, I’ve already mentioned Antivirus, do you have a firewall? Do you have some anti Malware software? Do you have a temp file cleaner? CastleCops have a great wiki page that will give you all the information you need to roll your own security suite, for free.

Secure your Wireless Network

More and more of us are going wireless, which is great! But, a wireless router is unsecured by default, so please check out your router’s manual and secure that network. If you don’t then your computer is wide open for anyone to get in and have a good rummage about and your bandwidth is open for anyone to steal. There are lots of articles available on this subject here is one to get you started. Top 10 Tips for Wireless Home Network Security by Bradley Mitchell.

Use Strong Passwords

If you have to use a password for something then make it a Strong Password. What’s a Strong Password? Click here

Backup

Now would be a good time to get a backup routine started. However careful we are, disasters will happen. Some tips;

• Never store your backups on the same partition as your operating system, even better, invest in a separate hard drive and burn your backups to disk regularly.
• Invest in some good imaging software and take the time to learn how it works, restoring an image after disaster has struck is quick and painless.
• Keep your backups secure, remember, they contain all your information. I wouldn’t recommend that you store them on line.
• If possible, keep more than one backup and store them in different locations.

Maintenance

You wouldn’t run your car without checking it’s oil and water, keeping it clean and sending it for a service now and then would you? The same goes for your computer. Look after your baby, some tips;

• Run a full anti virus and anti malware scan at least once a week, on all your hard drives.
• Run a temp file cleaner once a week, CCleaner is good for this.
• Defragment your hard drives about once a month.
• Uninstall programs that you no longer use
• Clean your hardware about once every six months, if your fans are really clogged up with dust then replace them, I find a can of compressed air, a soft real bristle paintbrush and a vacuum hose (held at a safe distance) ideal for cleaning out the inside of my case, don’t forget your keyboard.

Be careful what you install

We all love a freebie, and there are plenty of useful and safe applications that are available for download out there!! There are also quite a few that will give you a nasty surprise!! If you can, then try the software out in a safe environment first, you can get Microsoft’s Virtual PC for free now. At the very least, check out the EULA before you install, if you find that hard going then Javacool has a program that will help you with this called EULAlyzer™. If you do find some free software that you like, then consider donating to the author if you have a few pennies spare at the end of a month.

Be careful where you surf

The internet is a wonderful place, but it is full of dark corners so do watch your step. Ultimately, it is your choice where you go, but McAfee’s Site Advisor, Firetrust’s Sitehound and the MVPS Hosts File will all help to keep you away from the bad guys.

Finally!!!!. Have a Wonderful New Year!!!

Or maybe a family member or friend did!!  If you are reading this blog then you are probably fairly computer savvy already.. maybe your family and friends look to you for some good techy advice!!

A computer is just a tool.. it usually comes more or less ready to go… but it does need to be set up properly and if you are going to connect it to the internet or any other type of network (and who doesn’t?) then there are a lot of security considerations too.

I cannot stress this too much… to use my favourite analogy.. you wouldn’t get behind the wheel of a car without learning how to drive it and at least some basic maintenance.  Believe me, if people would just invest a little time in learning about their computer and about the internet they would save themselves a lot of time, stress and expense in the long run.

The education of the numpty in charge of the keyboard is an essential factor in any technological household!

To get you started I’ll list some of my favourite links for you… if you find yourself in trouble then check out the sites in the side bar on the right under the heading Some Places I Lurk and Work.

Get Safe Online - A UK Government sponsored site full of essential and useful information and tips.

Guidelines For Securing Windows Vista - A paper from Microsoft will all the essential info

A Parents Guide to Windows Vista - Title says it all I think!

ChatDanger - A site for kids or anyone who likes to chat.

Bank Safe Online - Some information for you if you are worried about online banking.

Stay Safe Online - A US site similar to Get Safe Online.

Microsoft Security At Home - A site from Microsoft aimed at the home user, well worth a visit.

Enjoy your computer.. and as long as you look after it then it will look after you.